$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/C2E603348BC611EEBAAE6C82C4F9AE02.roa File: C2E603348BC611EEBAAE6C82C4F9AE02.roa (raw, json) Hash identifier: 1k4ErWkHidQe648N30sEWmp/wAiRU343pYUgIGeFFCY= Subject key identifier: A5:D1:84:D4:F8:1F:BE:A4:F8:53:6C:CD:EA:92:BE:53:6D:80:A5:FE Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 0718 Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/C2E603348BC611EEBAAE6C82C4F9AE02.roa Signing time: Tue 30 Jan 2024 16:48:14 +0000 ROA not before: Tue 30 Jan 2024 16:48:14 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 58889 IP address blocks: 45.64.136.0/24 maxlen: 24 45.64.138.0/24 maxlen: 24 2401:1980::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Jun 2024 17:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1816 (0x718) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Jan 30 16:48:14 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65b9284e-4486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3c:2b:45:9c:e9:31:2d:aa:1f:4c:a4:3f:58: af:52:27:0a:64:d1:90:94:e9:65:a5:e7:0b:39:31: 8b:79:30:27:7c:74:ca:72:02:fc:6c:da:9f:14:b5: 90:43:96:9d:d9:9a:a9:ce:48:b7:23:1b:e9:c8:5d: 7d:12:60:24:e7:06:13:a4:44:38:7e:c9:e2:e7:79: b4:36:2b:a5:2b:87:d6:b6:01:f9:6d:14:a8:03:d8: 77:1b:74:c5:60:7d:0a:33:76:61:bc:b6:68:75:42: 6f:cd:63:6b:6a:23:22:25:48:4f:82:cf:13:12:94: 16:35:ec:28:24:66:86:c1:c1:07:e6:74:de:d1:c8: 95:39:5b:db:1e:be:87:19:13:6b:85:7f:82:8e:b9: 00:a3:a4:9a:d4:b0:90:89:33:f9:7e:1d:08:f2:63: b8:24:34:e4:66:1c:d5:14:f8:13:7f:aa:7b:20:8c: 02:a6:18:ca:17:3e:2d:ac:9f:62:35:e6:ab:01:16: c8:79:17:d2:a6:0a:0c:e9:b1:18:84:05:ed:aa:12: 73:c6:dd:ed:20:06:7c:2a:07:e5:92:e2:ae:ad:fe: 6d:d4:08:81:2b:b9:27:84:d5:25:03:0c:5f:45:9e: b5:0a:29:da:35:0b:e7:52:bb:0c:ae:d0:3e:8e:50: a1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:D1:84:D4:F8:1F:BE:A4:F8:53:6C:CD:EA:92:BE:53:6D:80:A5:FE X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/C2E603348BC611EEBAAE6C82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.136.0/24 45.64.138.0/24 IPv6: 2401:1980::/32 Signature Algorithm: sha256WithRSAEncryption 31:20:ac:84:a5:fd:de:e1:ed:d9:97:cd:86:1c:21:50:5f:7c: 01:cf:dc:cc:a6:a4:b1:05:df:1c:4a:ae:a8:2d:ae:a1:8e:fb: 83:0f:72:8a:4a:48:ea:7a:31:c4:22:ff:ed:e7:c2:de:6d:b9: 2a:b6:e5:18:b4:85:12:1b:b5:62:56:27:a5:8a:66:e2:e2:70: cd:61:e0:40:60:fa:e9:0c:1d:15:66:92:78:8e:86:a8:65:a5: f3:29:2d:6b:fc:4f:ed:52:6b:b0:ca:4d:64:e7:a5:94:88:37: 5a:3f:c7:bd:29:cd:89:79:7e:41:af:74:61:45:45:13:06:35: b2:da:90:46:9b:e5:07:56:d6:16:e5:42:25:cb:01:3f:75:cc: b6:3f:46:29:e6:fe:09:db:d6:ed:9b:59:62:5b:bd:2a:ee:80: 6c:c9:8a:f3:8d:e5:72:cd:7f:29:75:fc:2e:50:54:5b:f6:c2: 04:c6:4c:02:74:76:b1:cc:81:58:2c:ca:4f:66:de:5c:9c:2e: 85:0f:34:b8:eb:56:55:ec:82:f3:39:27:8c:3b:94:d8:05:49: a0:c0:4f:c0:2b:6f:4c:17:88:55:f8:94:92:c7:03:7c:e1:0d: a4:22:44:ee:cb:57:7c:1b:4d:24:eb:d1:f2:f2:f2:1c:45:d2: d2:33:1d:0d -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjQwMTMwMTY0ODE0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5Mjg0ZS00NDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTwrRZzpMS2qH0ykP1ivUicKZNGQlOllpecLOTGLeTAnfHTKcgL8bNqfFLWQ Q5ad2Zqpzki3IxvpyF19EmAk5wYTpEQ4fsni53m0NiulK4fWtgH5bRSoA9h3G3TF YH0KM3ZhvLZodUJvzWNraiMiJUhPgs8TEpQWNewoJGaGwcEH5nTe0ciVOVvbHr6H GRNrhX+CjrkAo6Sa1LCQiTP5fh0I8mO4JDTkZhzVFPgTf6p7IIwCphjKFz4trJ9i NearARbIeRfSpgoM6bEYhAXtqhJzxt3tIAZ8KgflkuKurf5t1AiBK7knhNUlAwxf RZ61CinaNQvnUrsMrtA+jlChKQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKXRhNT4 H76k+FNszeqSvlNtgKX+MB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgyRDkvMEVEQTZENUVDRERBMTFFN0JERUE4QzJCQzRGOUFFMDIvQzJFNjAzMzQ4 QkM2MTFFRUJBQUU2QzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAAtQIgDBAAtQIowDQQCAAIwBwMFACQBGYAwDQYJKoZIhvcN AQELBQADggEBADEgrISl/d7h7dmXzYYcIVBffAHP3MympLEF3xxKrqgtrqGO+4MP copKSOp6McQi/+3nwt5tuSq25Ri0hRIbtWJWJ6WKZuLicM1h4EBg+ukMHRVmkniO hqhlpfMpLWv8T+1Sa7DKTWTnpZSIN1o/x70pzYl5fkGvdGFFRRMGNbLakEab5QdW 1hblQiXLAT91zLY/Rinm/gnb1u2bWWJbvSrugGzJivON5XLNfyl1/C5QVFv2wgTG TAJ0drHMgVgsyk9m3lycLoUPNLjrVlXsgvM5J4w7lNgFSaDAT8Arb0wXiFX4lJLH A3zhDaQiRO7LV3wbTSTr0fLy8hxF0tIzHQ0= -----END CERTIFICATE-----Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-ams.rpki-client.org